# -*- coding: utf-8 -*-
# Copyright (c) 2016 Mirantis Inc.
#
# Licensed under the Apache License, Version 2.0 (the "License");
# you may not use this file except in compliance with the License.
# You may obtain a copy of the License at
#
#    http://www.apache.org/licenses/LICENSE-2.0
#
# Unless required by applicable law or agreed to in writing, software
# distributed under the License is distributed on an "AS IS" BASIS,
# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or
# implied.
# See the License for the specific language governing permissions and
# limitations under the License.
"""Small API to list permissions available in application."""


from decapod_api import auth
from decapod_api.views import generic
from decapod_common.models import role


class PermissionView(generic.ModelView):

    decorators = [
        auth.AUTH.require_authorization("api", "view_role"),
        auth.AUTH.require_authentication
    ]

    NAME = "permission"
    ENDPOINT = "/permission/"

    def get(self):
        known_permissions = [
            {"name": key, "permissions": sorted(value)}
            for key, value in role.PermissionSet.KNOWN_PERMISSIONS.items()
        ]

        return {"items": known_permissions}
